<!-- login.php-->
<?php
	session_start(); // This starts the session which is like a cookie, but it isn't saved on your hdd and is much more secure.
	mysql_connect("mysql","PUT YOUR DATABASE USER HERE","PUT YOUR DATABASE PASSWORD HERE"); // Connect to the MySQL server
	mysql_select_db("PUT YOUR DATABASE HERE (the same as your database user if you're on DHost!)"); // Select your Database
	if(isset($_SESSION['loggedin']))
	{
		die("You are already logged in!");
	} // That bit of code checks if you are logged in or not, and if you are, you can't log in again!
	if(isset($_POST['submit']))
	{
		$name = mysql_real_escape_string($_POST['username']); // The function mysql_real_escape_string() stops hackers!
		$pass = mysql_real_escape_string($_POST['password']); // We won't use MD5 encryption here because it is the simple tutorial, if you don't know what MD5 is, dont worry!
		$mysql = mysql_query("SELECT * FROM users WHERE name = '{$name}' AND password = '{$pass}'"); // This code uses MySQL to get all of the users in the database with that username and password.
		if(mysql_num_rows($mysql) < 1)
		{
			die("Password was probably incorrect!");
		} // That snippet checked to see if the number of rows the MySQL query was less than 1, so if it couldn't find a row, the password is incorrect or the user doesn't exist!
		$_SESSION['loggedin'] = "YES"; // Set it so the user is logged in!
		$_SESSION['name'] = $name; // Make it so the username can be called by $_SESSION['name']
		die("You are now logged in!"); // Kill the script here so it doesn't show the login form after you are logged in!
	} // That bit of code logs you in! The "$_POST['submit']" bit is the submission of the form down below VV
	echo "<form type='login.php' method='POST'>
	Username: <br>
	<input type='text' name='username'><br>
	Password: <br>
	<input type='password' name='password'><br>
	<input type='submit' name='submit' value='Login'>
	</form>"; // That set up the form to enter your password and username to login.
	
	?>